Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdckcKhhPSE1BaHfUP0Jzt1MtpQ.cer
File: hdckcKhhPSE1BaHfUP0Jzt1MtpQ.cer (raw, json)
Hash identifier: 3V/pi5JvvHdK6Hqo28lKL2Pnlv++U4vIjsp1wu7DIY8=
Subject key identifier: 85:D7:24:70:A8:61:3D:21:35:05:A1:DF:50:FD:09:CE:DD:4C:B6:94
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 011248
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9129DAC/8C5C009EB44C11E998120237C4F9AE02/hdckcKhhPSE1BaHfUP0Jzt1MtpQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9129DAC/8C5C009EB44C11E998120237C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 14 May 2021 00:50:44 +0000
Certificate not after: Sat 30 Jul 2022 00:00:00 +0000
Subordinate resources: IP: 45.249.68.0/22
IP: 103.217.228.0/22
IP: 2400:3ac0::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70216 (0x11248)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 14 00:50:44 2021 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=A9129DAC/serialNumber=85D72470A8613D213505A1DF50FD09CEDD4CB694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e1:f6:a5:41:3c:71:fe:48:ca:44:ef:21:ff:
ad:22:5b:c4:27:dc:ce:85:be:ba:a5:46:76:2a:6d:
13:62:33:b6:42:b0:2a:89:ba:c7:62:1c:f8:62:2f:
d4:cc:99:1e:99:70:d0:00:cf:f4:9c:09:2b:f1:74:
4a:72:b1:34:66:2b:7f:03:83:4d:e0:db:7e:23:9a:
01:42:0c:52:33:d5:39:4d:85:85:34:69:73:f0:d8:
b9:af:61:2d:7f:ef:c5:10:0e:88:c0:db:f4:e8:48:
2f:33:23:95:f8:a7:2b:6b:44:c9:cf:3e:61:3a:51:
2a:c4:c2:e2:6c:cf:db:a0:9a:71:6f:3e:ce:87:87:
45:54:3f:45:d1:02:33:02:c0:f1:1f:8d:92:c2:5a:
93:e6:e5:a3:1a:27:0a:14:d4:61:d7:31:4c:ff:34:
b9:5a:b1:ef:2e:43:f8:6f:d4:98:af:5c:ff:9b:93:
1d:cc:ad:71:bf:88:e1:b0:41:39:34:85:7f:fd:b5:
56:06:a9:bf:09:c2:3a:77:ac:85:c4:8f:57:2b:d9:
43:09:94:dd:2a:f8:5f:0d:3e:08:4b:be:11:1b:f9:
f4:8b:5c:a2:6c:74:3c:34:20:0d:f1:c5:4c:b2:6e:
e5:55:69:db:5b:85:e0:a5:24:89:ef:0a:9e:8b:50:
1d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D7:24:70:A8:61:3D:21:35:05:A1:DF:50:FD:09:CE:DD:4C:B6:94
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9129DAC/8C5C009EB44C11E998120237C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9129DAC/8C5C009EB44C11E998120237C4F9AE02/hdckcKhhPSE1BaHfUP0Jzt1MtpQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.249.68.0/22
103.217.228.0/22
IPv6:
2400:3ac0::/32
Signature Algorithm: sha256WithRSAEncryption
11:5f:5a:4e:90:4a:b6:7b:18:e9:70:dd:65:f9:58:21:56:9b:
5e:63:d8:2d:84:ea:81:da:a6:1c:93:3f:2e:7e:79:6e:35:bd:
c8:9c:35:36:37:7b:58:68:96:e3:f6:9e:95:f5:0a:13:06:3e:
74:4a:47:7e:b2:fc:7e:d2:c8:39:f6:96:92:91:9e:9d:45:ad:
89:ce:2e:2c:62:c8:6e:a7:98:77:a9:83:ad:88:2b:41:dc:70:
f3:9c:eb:cb:f9:e0:e0:2c:50:6e:de:31:4d:10:e4:32:85:18:
f0:18:77:b0:9b:3b:ce:73:40:69:2a:b3:5b:5f:18:08:e2:df:
9f:13:d1:99:36:29:34:b5:92:44:24:da:ca:3f:17:6c:b3:5a:
d2:9c:04:a5:fe:37:06:1a:d1:80:a3:a0:3a:8f:a1:08:3c:d3:
86:8f:72:01:89:64:09:f2:76:d1:79:39:95:89:fa:9a:04:ab:
de:69:61:f4:94:e6:8e:4d:f1:8d:b0:43:47:37:20:b8:8e:04:
18:16:db:df:08:4f:74:7a:92:8b:38:9e:9a:a3:5b:1c:03:55:
81:3b:4c:15:7f:6d:42:8e:f8:d6:e6:e1:ea:a7:51:b2:f1:83:
ac:a4:01:c5:84:ef:2b:a2:b9:d9:d0:24:1a:ba:d3:4c:3d:93:
58:82:5c:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:17 2023 by rpki-client on console-fra.rpki-client.org